Brasserio Cookie Policy
Version 1.0 | Last Updated: 28 April 2026 | Publication URL: https://brasserio.com/cookie-policy
1. Scope
This Cookie Policy explains how Brasserio uses cookies, local storage, SDKs, pixels, tags, and similar technologies on Brasserio websites, restaurant dashboards, embedded booking widgets, public restaurant pages, and related digital services.
This Policy should be read with the Privacy Policy. Restaurant websites that embed the Brasserio widget may use their own cookies and tracking technologies. The restaurant is responsible for its own cookie notices, consent banner, and third-party website technologies.
2. What Cookies and Similar Technologies Are
Cookies are small files stored on a browser or device. Similar technologies include local storage, session storage, software development kits, tags, pixels, and device identifiers. These technologies help services remember sessions, secure accounts, route traffic, measure usage, and support booking and payment flows.
3. Cookie Categories We Use
| Category | Purpose | Can it be disabled? |
|---|---|---|
| Strictly necessary | Login, authentication, session continuity, booking-flow continuity, payment-flow reliability, security, fraud prevention, load balancing, and technical delivery of the Services. | Not through Brasserio controls. Browser blocking may break the Services. |
| Preferences | Remember language, locale, interface settings, and similar user preferences. | Usually yes, but disabling may reduce usability. |
| Analytics and performance | Understand how the Services are used, measure errors and performance, improve pages and flows, and identify product issues. Google Analytics may be used. | Where required by law, these are used with consent or available opt-out controls. |
| Marketing and attribution | Measure campaigns, understand referral sources, and attribute signups or conversions. Brasserio does not currently use Meta Pixel, LinkedIn Ads, or paid retargeting. | Where required by law, these are used with consent or available opt-out controls. |
| Security and anti-abuse | Protect accounts, prevent bots, fake reservations, credential abuse, spam, and automated misuse. reCAPTCHA may be used. | Some controls may be essential to security and cannot be disabled without affecting use. |
4. Technologies and Providers Currently Used
| Provider / Technology | Current use | Typical data involved |
|---|---|---|
| Brasserio first-party cookies and storage | Session, login, security, language, preferences, booking flow, widget operation, dashboard operation, and payment flow continuity. | Session IDs, preferences, consent or storage choices, security tokens, booking-flow state. |
| Google Analytics | Analytics and performance measurement on websites or digital services where enabled. | Usage events, page/screen interactions, device/browser data, approximate location derived by provider, identifiers. |
| Google reCAPTCHA | Bot detection, spam prevention, abuse prevention, and account or booking-flow protection where enabled. | Device/browser data, interaction signals, network identifiers processed by Google. |
| PayPlus hosted payment technologies | Payment checkout, deposit, card hold, authorization, transaction, refund, and chargeback-related flows. | Payment tokens, transaction IDs, limited card metadata, payment status, fraud/risk indicators. |
| Twilio and link.brasserio.com | SMS delivery, waitlist messages, booking confirmations, cancellation links, and link shortening. | Phone number, message metadata, link metadata, delivery status. |
| Firebase Cloud Messaging | Staff push notifications and device notification delivery. | Push tokens, device/application identifiers, notification metadata. |
| Cloudflare | Security, traffic routing, performance, DNS, and protection where enabled. | Network and traffic metadata, security logs, request metadata. |
Brasserio does not currently use Google Tag Manager, Meta Pixel, LinkedIn Ads, Hotjar, Microsoft Clarity, Sentry, Datadog, Mailgun, or paid retargeting for the Services described in this Policy. If these or similar tools are added, Brasserio will update this Policy or provide legally required notice and choices.
5. Embedded Booking Widget
When a restaurant embeds the Brasserio widget, Brasserio may use cookies or storage inside the booking experience to operate booking, waitlist, cancellation, payment, security, and analytics features. The restaurant website may separately set its own cookies, pixels, plugins, scripts, and analytics tools. Brasserio does not control the restaurant’s independent website technologies.
Restaurant Customers are responsible for disclosing the Brasserio widget and obtaining any legally required consent for cookies or similar technologies used on their websites, especially where analytics, advertising, or cross-site technologies are enabled.
6. Cookie Duration
Cookie and storage durations vary by purpose, browser, device, provider, and configuration. Session cookies may expire when the browser session ends. Security and booking-flow tokens may expire quickly. Preference and consent-related storage may last up to 12 months. Analytics identifiers may last up to 24 months or as configured by the provider. Payment, SMS, and security provider records may be retained under their own policies and legal obligations.
7. Your Choices
Browser controls: You can block or delete cookies through your browser settings. Blocking cookies may prevent login, booking, payment, cancellation, or dashboard functionality.
Global Privacy Control: Brasserio honors Global Privacy Control signals where legally required and technically recognized for opt-out contexts.
Email request: You may contact support@brasserio.com to ask about cookie choices, analytics opt-outs, or privacy rights.
Restaurant websites: For cookies used independently by a restaurant website, use that restaurant’s cookie controls or contact the restaurant.
8. Contact
For cookie or privacy questions, contact support@brasserio.com.
Operated by DevYouUp | Contact: support@brasserio.com